The UK’s data protection regulator has accused the country’s largest police service of failing to properly maintain records on organized crime groups (OGCs) and storing inaccurate information in key databases.
The Information Commissioner’s Office (ICO) said London’s Metropolitan Police (MPS) had breached the Data Protection Act 2018. transmit or make available for law enforcement purposes; “
In fact, from April to July 2020, a coding issue in the Police National Database (PND) introduced test data into a live system, causing some legitimate files to be rejected. The ICO said the MET had been unable to discover this for a “considerable period of time.”
Metropolitan Airlines was also unaware of a second incident in which a sensitive file already loaded on the PND was not properly updated. After solving both cases, police found that some OGC records remained on the system that should have been deleted, he explained, ICO.
Read more about Metropolitan Police: ICO issues notice after Metropolitan Police breaches GDPR.
No records were lost, but they were accessible through the MPS system, so the fact that accurate information was not always accessible through the PND “was a significant loss” to police partners. The ICO argued that it was possible.
“Law enforcement agencies can use the PND to assess whether a particular criminal or criminal group may be receiving the attention of a partner organization.
“The unavailability of accurate and up-to-date records denies partner knowledge that could compromise investigations. We are particularly concerned about what harm might have occurred as a result of the lack of sufficient information.”
London Metropolitan Police apparently did not notify other police about the snafu in over six months. The PND has been operational since his 2011, but the military still describes its check system as “immature.”
An automated system that checks daily uploads to a huge database could have prevented the incident, regulators said.
“Personal data must be treated with the utmost care. This is especially important for MPS, which deals with sensitive information directly related to criminal activity,” argued ICO research director Steve Eckersley. I’m here.
“This disciplinary action reflects the ICO’s broader powers, such as issuing reprimands and sharing good practices, to help strengthen compliance and ensure organizations use people’s data responsibly.” .”
